Update all dependencies#26
Open
renovate[bot] wants to merge 1 commit into
Open
Conversation
renovate
Bot
force-pushed
the
renovate/all-dependencies
branch
7 times, most recently
from
6a9526b to
4f9fb13
Compare
renovate
Bot
force-pushed
the
renovate/all-dependencies
branch
6 times, most recently
from
6eadd5d to
a324030
Compare
renovate
Bot
force-pushed
the
renovate/all-dependencies
branch
5 times, most recently
from
7d3a49b to
e093824
Compare
renovate
Bot
force-pushed
the
renovate/all-dependencies
branch
4 times, most recently
from
5f4e5df to
f583445
Compare
renovate
Bot
force-pushed
the
renovate/all-dependencies
branch
4 times, most recently
from
98a89d9 to
023a73d
Compare
renovate
Bot
force-pushed
the
renovate/all-dependencies
branch
3 times, most recently
from
dfc3fe9 to
f610dc0
Compare
renovate
Bot
force-pushed
the
renovate/all-dependencies
branch
6 times, most recently
from
48539e9 to
b4788bb
Compare
renovate
Bot
force-pushed
the
renovate/all-dependencies
branch
9 times, most recently
from
aab7bfd to
dc38b68
Compare
renovate
Bot
force-pushed
the
renovate/all-dependencies
branch
7 times, most recently
from
80b1d7c to
89ab77c
Compare
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
1 participant
Add this suggestion to a batch that can be applied as a single commit.This suggestion is invalid because no changes were made to the code.Suggestions cannot be applied while the pull request is closed.Suggestions cannot be applied while viewing a subset of changes.Only one suggestion per line can be applied in a batch.Add this suggestion to a batch that can be applied as a single commit.Applying suggestions on deleted lines is not supported.You must change the existing code in this line in order to create a valid suggestion.Outdated suggestions cannot be applied.This suggestion has been applied or marked resolved.Suggestions cannot be applied from pending reviews.Suggestions cannot be applied on multi-line comments.Suggestions cannot be applied while the pull request is queued to merge.Suggestion cannot be applied right now. Please check back later.
This PR contains the following updates:
^1.1.2→^1.3.1^2.0.0→^2.2.0^2.1.2→^2.1.13^1.0.0→^1.1.3^0.36.0→^0.50.3^0.36.0→^0.50.3^0.36.0→^0.50.3^22.15.21→^22.19.21^19.1.5→^19.2.17^19.1.5→^19.2.3^1.3.1→^1.3.2^1.8.10→^1.11.2^6.0.5→^6.0.8>=22→>=22.23.0^19.1.0→^19.2.7^19.1.0→^19.2.7^1.89.0→^1.101.0^5.8.3→^5.9.3Release Notes
Becklyn-Studios/ts-libs (@becklyn/eslint)
v1.3.1Compare Source
Patch Changes
65753b9: update dependenciesv1.3.0Compare Source
v1.2.3Compare Source
Patch Changes
5f57110: update dependenciesv1.2.2Compare Source
v1.2.1Compare Source
Patch Changes
5573f12: update dependenciesv1.2.0Compare Source
Minor Changes
9431692: Ignore @typescript-eslint/triple-slash-reference rule in next-env.d.tsv1.1.8Compare Source
Patch Changes
42f2b79: update dependenciesv1.1.7Compare Source
Patch Changes
41a0fd4: update dependenciesv1.1.6Compare Source
Patch Changes
1bda154: Update dependenciesv1.1.5Compare Source
Patch Changes
d8b104f: Add/update homepage and repsitory urls for all packagesv1.1.4Compare Source
Patch Changes
c6d3fce: Update dependenciesv1.1.3Compare Source
Patch Changes
d8b104f: Add/update homepage and repsitory urls for all packagesfraym/fraeym (@fraym/auth)
v0.50.3Compare Source
v0.50.2Compare Source
v0.50.1Compare Source
v0.50.0Compare Source
v0.49.7Compare Source
v0.49.6Compare Source
v0.49.5Compare Source
v0.49.4Compare Source
v0.49.3Compare Source
v0.49.2Compare Source
v0.49.1Compare Source
v0.49.0Compare Source
v0.48.3Compare Source
v0.48.2Compare Source
v0.48.1Compare Source
v0.48.0Compare Source
v0.47.0Compare Source
v0.46.0Compare Source
v0.45.0Compare Source
v0.44.1Compare Source
v0.44.0Compare Source
v0.43.0Compare Source
v0.42.0Compare Source
v0.41.1Compare Source
v0.41.0Compare Source
v0.40.0Compare Source
v0.39.0Compare Source
v0.38.4Compare Source
v0.38.3Compare Source
v0.38.2Compare Source
v0.38.1Compare Source
v0.38.0Compare Source
v0.37.2Compare Source
v0.37.1Compare Source
v0.37.0Compare Source
urql-graphql/urql (@urql/exchange-retry)
v1.3.2Compare Source
Patch Changes
retryExchange())Submitted by @jtomaszewski (See #3775)
0no-co/gql.tada (gql.tada)
v1.11.2Compare Source
Patch Changes
@0no-co/graphqlsp@^1.17.3to include go-to-definition supportSubmitted by @kitten (See #569)
v1.11.1Compare Source
Patch Changes
@0no-co/graphqlsp@^1.17.2Submitted by @kitten (See #558)
v1.11.0Compare Source
Minor Changes
readResulttesting utility, which, unlikeunsafe_readResult, accepts fragments as an array and then becomes fully typedSubmitted by @kitten (See #555)
gql.tada/testing, increasing separation. This isn't a breaking change asmaskFragmentsandunsafe_readResultare (for now) re-exported from the main entrypointSubmitted by @kitten (See #555)
Patch Changes
v1.10.2Compare Source
Patch Changes
Submitted by @kitten (See #551)
@0no-co/graphqlsp@^1.17.1Submitted by @kitten (See #553)
v1.10.1Compare Source
Patch Changes
@0no-co/graphqlspSubmitted by @kitten (See #549)
v1.10.0Compare Source
Minor Changes
Submitted by @kitten (See
97cc2c7)Patch Changes
@0no-co/graphqlspto^1.16.0and usefindAllCallExpressions' newcollectFragments: falseoption in theturbocommand, replacing the plugin-info proxy that previously disabled fragment definition lookups. This also picks up graphqlsp's memoized gql.tada type probe, which reduces type checker work for non-GraphQL calls during call discoverySubmitted by @JoviDeCroock (See #539)
Submitted by @kitten (See #548)
Submitted by @JoviDeCroock (See #542)
97cc2c7, #537, #545, #547, and #540)v1.9.3Compare Source
Patch Changes
tsgopreview by modernizing tsconfig module resolution and widening TypeScript peer ranges through TS 8Submitted by @JoviDeCroock (See #522)
Submitted by @kitten (See #532)
v1.9.2Compare Source
Patch Changes
Submitted by @JoviDeCroock (See #514)
v1.9.1Compare Source
Patch Changes
parseDocumentduring batch typecheckingSubmitted by @EDjur (See #511)
v1.9.0Compare Source
Minor Changes
Submitted by @JoviDeCroock (See #479)
Patch Changes
v1.8.13Compare Source
Patch Changes
v1.8.12Compare Source
Patch Changes
v1.8.11Compare Source
Patch Changes
Submitted by @kitten (See #449)
enisdenjo/graphql-ws (graphql-ws)
v6.0.8Compare Source
Patch Changes
#667
fc03004Thanks @endigma! - Fix the server sending aCompletemessage after anErrormessage for subscriptions.Previously, when a subscription's async iterable threw an error, the server would send:
Per the protocol spec:
The server now correctly sends only the
Errormessage:Clients that correctly follow the spec should be unaffected, as they are expected to ignore messages for operations they consider already completed.
v6.0.7Compare Source
Patch Changes
#665
5536292Thanks @enisdenjo! - Remove uWebSockets.js from peer dependencies in package.jsonIt does not exist on NPM anymore and could lead to weird behavior when installing dependencies with
npm. Nothing else changes, usinggraphql-wswith uWebSockets.js still works.v6.0.6Compare Source
Patch Changes
1f53bb4Thanks @enisdenjo! - Fix building issues causing CJS type definitions referencing ESM modulesnodejs/node (node)
v22.23.0: 2026-06-18, Version 22.23.0 'Jod' (LTS), @aduh95Compare Source
This is a security release.
Notable Changes
Commits
38b4c5ed51] - (CVE-2026-48933) crypto: guard WebCrypto cipher output length (Filip Skokan) nodejs-private/node-private#878ad8a10c1bb] - deps: update llhttp to 9.4.2 (Antoine du Hamel) nodejs-private/node-private#890ca825a87cc] - deps: update undici to 6.27.0 (aduh95) #63711a1a5bb9683] - (CVE-2026-48937) deps: fix integration issues with the latest nghttp2 (Tim Perry) #628910f48583512] - (SEMVER-MAJOR) deps: update nghttp2 to 1.69.0 (Node.js GitHub Bot) #6289138c869fc05] - deps: update nghttp2 to 1.68.0 (nodejs-github-bot) #61136290667c84f] - deps: update nghttp2 to 1.67.1 (nodejs-github-bot) #59790c9f3da76aa] - deps: update nghttp2 to 1.66.0 (Node.js GitHub Bot) #5878660890be563] - deps: update nghttp2 to 1.65.0 (Node.js GitHub Bot) #572695024c7d5d8] - deps: update archs files for openssl-3.5.7 (Node.js GitHub Bot) #638207f4eb5af2e] - deps: upgrade openssl sources to openssl-3.5.7 (Node.js GitHub Bot) #63820ebb4ec78a8] - deps: fix aix implicit declaration in OpenSSL (Abdirahim Musse) #626565763d40826] - deps: update llhttp to 9.4.1 (Node.js GitHub Bot) #63045c551a51d0c] - (CVE-2026-48930) dns,net: reject hostnames with embedded NUL bytes (Matteo Collina) nodejs-private/node-private#8680a22d40180] - (CVE-2026-48931) http: fix response queue poisoning in http.Agent (Matteo Collina) nodejs-private/node-private#846c79968e108] - (CVE-2026-48619) http2: cap originSet size to prevent unbounded memory growth (Matteo Collina) nodejs-private/node-private#8550c37bff2ff] - http2: fix DEP0194 message (KaKa) #58669ea5dc6b529] - (SEMVER-MAJOR) http2: remove support for priority signaling (Matteo Collina) #582939b6af26132] - (CVE-2026-48615) lib,test: redact proxy credentials in tunnel errors (Matteo Collina) nodejs-private/node-private#86728dcd38864] - (CVE-2026-48935) permission: disable FileHandle utimes with permission model (RafaelGSS) nodejs-private/node-private#8732f62693801] - (CVE-2026-48617) permission: handle process.chdir on writereport (RafaelGSS) nodejs-private/node-private#8701662a3ea09] - test: add session reuse host verification regressions (Matteo Collina) nodejs-private/node-private#854718d5d0e2c] - test: skiptest-fs-utimes-y2K38on armv7 (Richard Lau) #63836041185b61f] - test: skip test-cluster-dgram-reuse on AIX 7.3 (Stewart X Addison) #62238fd890ba01d] - (CVE-2026-48934) tls: bind reusable sessions to authenticated host (Matteo Collina) nodejs-private/node-private#85439d1d09684] - (CVE-2026-48928) tls: fix case-sensitive SNI context matching (Matteo Collina) nodejs-private/node-private#8572197a47144] - (CVE-2026-48618) tls: normalize hostname for server identity checks (Matteo Collina) nodejs-private/node-private#869v22.22.3: 2026-05-13, Version 22.22.3 'Jod' (LTS), @marco-ippolitoCompare Source
Commits
4f780905c5] - crypto: fix potential null pointer dereference when BIO_meth_new() fails (Nora Dossche) #617884a09efb947] - crypto: update root certificates to NSS 3.121 (Node.js GitHub Bot) #62485e4c0d99839] - deps: update timezone to 2026a (Node.js GitHub Bot) #621640226c8dd7a] - deps: update simdjson to 4.5.0 (Node.js GitHub Bot) #62382e742ab748c] - deps: update sqlite to 3.51.3 (Node.js GitHub Bot) #6225673cac0571a] - deps: update amaro to 1.1.8 (Node.js GitHub Bot) #62151ae5c162b93] - deps: update amaro to 1.1.7 (Node.js GitHub Bot) #61730b819cb9977] - deps: update amaro to 1.1.6 (Node.js GitHub Bot) #61603bbcce09dc7] - deps: update sqlite to 3.52.0 (Node.js GitHub Bot) #6215022ff2d81ce] - deps: update simdjson to 4.3.1 (Node.js GitHub Bot) #61930f49b51d75c] - deps: update acorn-walk to 8.3.5 (Node.js GitHub Bot) #619281a5cec0d49] - deps: update acorn to 8.16.0 (Node.js GitHub Bot) #61925d339497688] - deps: update nbytes to 0.1.3 (Node.js GitHub Bot) #618793ff8ffd459] - deps: remove stale OpenSSL arch configs (René) #61834b8ddbc1e9a] - deps: update llhttp to 9.3.1 (Node.js GitHub Bot) #61827ffda97afd4] - deps: update googletest to2461743(Node.js GitHub Bot) #6248479aa32cf4f] - deps: update googletest to73a63ea(Node.js GitHub Bot) #61927b6957e13b6] - deps: update archs files for openssl-3.5.6 (Node.js GitHub Bot) #626293a27669063] - deps: upgrade openssl sources to openssl-3.5.6 (Node.js GitHub Bot) #62629d568a1bb53] - deps: upgrade npm to 10.9.8 (npm team) #62463ec11f3c1d5] - deps: V8: backport85b3900(Thibaud Michaud) #6278308609712ed] - deps: V8: backport1b27e46(Thibaud Michaud) #62783dcc60d5ab2] - deps: V8: backport9997fc0(Thibaud Michaud) #627831d1f4451fb] - deps: V8: cherry-pickb96e40d(Clemens Backes) #627832268567237] - deps: V8: cherry-pick7cb6188(Thibaud Michaud) #6278392804cdbea] - deps: V8: cherry-picke7ccf0a(Thibaud Michaud) #62783eae2c27a40] - deps: V8: cherry-pick8e214ec(Thibaud Michaud) #62783a1799a49bb] - deps: V8: backport63b8849(Thibaud Michaud) #62783a2df2d8731] - deps: V8: backport3239427(Thibaud Michaud) #62783e3d65c7dca] - deps: V8: backport89dc6ea(Thibaud Michaud) #627835e7db133de] - deps: V8: backport910cb91(Jakob Kummerow) #62783d0c24a28af] - deps: V8: cherry-pickb8f91e5(Thibaud Michaud) #62783d358687824] - deps: V8: cherry-pickcf03d55(Thibaud Michaud) #6278367c8b2c349] - deps: V8: cherry-pick692f3d5(Sébastien Doeraene) #6278371e5a59ffd] - deps: V8: cherry-pickc734674(Manos Koukoutos) #62783f0dbe81c7b] - deps: V8: cherry-pickb2f3aea(Thibaud Michaud) #62783d333f480c3] - deps: V8: cherry-pick5f1342c(Matthias Liedtke) #62783db722725bb] - deps: use npm undici@six tag inupdate-undici.sh(Matteo Collina) #630129b57979d9c] - doc: add Rafael to last security release steward (Rafael Gonzaga) #62423d8075585bf] - doc: add path to vulnerabilities.json mention (Rafael Gonzaga) #623556ec9a70204] - doc: clarify fs.ReadStream and fs.WriteStream are not constructable (Kit Dallege) #622081fc86fcb6e] - doc: add note (and caveat) formock.moduleabout customization hooks (Jacob Smith) #62075491be80bd9] - doc: add efekrskl as triager (Efe) #6187618558293a3] - doc: fix module.stripTypeScriptTypes indentation (René) #619928e20976522] - doc: explicitly mention Slack handle (Rafael Gonzaga) #6198670b8e6b4fb] - doc: rename invalidfunctionparameter (René) #619424045c76f6c] - doc: clarify status of feature request issues (Antoine du Hamel) #61505Configuration
📅 Schedule: (UTC)
* 0-1 * * 1#1)🚦 Automerge: Disabled by config. Please merge this manually once you are satisfied.
♻ Rebasing: Whenever PR becomes conflicted, or you tick the rebase/retry checkbox.
👻 Immortal: This PR will be recreated if closed unmerged. Get config help if that's undesired.
This PR was generated by Mend Renovate. View the repository job log.